Bump the dev-dependencies group with 5 updates

[dependabot]

Bumps the dev-dependencies group with 5 updates:

Package	From	To
friendsofphp/php-cs-fixer	3.49.0	3.52.1
phpstan/phpstan	1.10.57	1.10.65
phpstan/phpstan-symfony	1.3.7	1.3.9
phpunit/phpunit	10.5.10	10.5.15
vimeo/psalm	5.20.0	5.23.1

Updates friendsofphp/php-cs-fixer from 3.49.0 to 3.52.1

Release notes

Sourced from friendsofphp/php-cs-fixer's releases.

v3.52.1 15 Keys

What's Changed

• fix: PhpCsFixer\Tokenizer\Tokens::setSize return type by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7900
• fix: StatementIndentationFixer - do not crash on ternary operator in class property by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7899

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.52.0...v3.52.1

v3.52.0 15 Keys

What's Changed

• feat: @Symfony:risky - add no_unreachable_default_argument_value by @​gharlan in PHP-CS-Fixer/PHP-CS-Fixer#7863
• feat: PhpCsFixer ruleset - enable nullable_type_declaration_for_default_null_value by @​mvorisek in PHP-CS-Fixer/PHP-CS-Fixer#7870
• feat: Add array_indentation to PER-CS2.0 ruleset by @​VincentLanglet in PHP-CS-Fixer/PHP-CS-Fixer#7881
• feat: Add support for callable template in PHPDoc parser by @​mvorisek in PHP-CS-Fixer/PHP-CS-Fixer#7084
• fix: no_useless_concat_operator - do not break variable by @​tamiroh in PHP-CS-Fixer/PHP-CS-Fixer#7827
• fix: TokensAnalyzer - handle unary operator in arrow functions by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7862
• fix: TypeExpression - fix "JIT stack limit exhausted" error by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7843
• fix: Constant invocation detected in DNF types by @​SharkyKZ in PHP-CS-Fixer/PHP-CS-Fixer#7869
• fix: Correctly indent multiline constants and properties by @​julienfalque in PHP-CS-Fixer/PHP-CS-Fixer#7875
• chore: fix PHP 8.4 deprecations by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7894
• chore: fix PHPStan 1.10.60 issues by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7873
• chore: list over array in more places by @​keradus in PHP-CS-Fixer/PHP-CS-Fixer#7876
• chore: replace template with variable in Preg class by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7882
• chore: update PHPStan by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7871
• depr: nullable_type_declaration_for_default_null_value - deprecate option that is against @PHP84Migration by @​keradus in PHP-CS-Fixer/PHP-CS-Fixer#7872
• docs: Fix typo by @​BenMorel in PHP-CS-Fixer/PHP-CS-Fixer#7889

New Contributors

• @​SharkyKZ made their first contribution in PHP-CS-Fixer/PHP-CS-Fixer#7869
• @​BenMorel made their first contribution in PHP-CS-Fixer/PHP-CS-Fixer#7889

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.51.0...v3.52.0

v3.51.0 Insomnia

What's Changed

• feat: @Symfony - add nullable_type_declaration by @​keradus in PHP-CS-Fixer/PHP-CS-Fixer#7856
• chore: add missing tests for non-documentation classes by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7848
• chore: do not perform type analysis in tests by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7852
• chore: list over array in more places by @​keradus in PHP-CS-Fixer/PHP-CS-Fixer#7857
• chore: tests documentation classes by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7855
• test: fix wrong type in param annotation by @​keradus in PHP-CS-Fixer/PHP-CS-Fixer#7858

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.50.0...v3.51.0

v3.50.0 Insomnia

What's Changed

• feat: Ability to remove unused imports from multi-use statements by @​Wirone in PHP-CS-Fixer/PHP-CS-Fixer#7815
• feat: Support shortening symbols from multi-use statements (only classes for now) by @​Wirone in PHP-CS-Fixer/PHP-CS-Fixer#7816
• feat: allow PHPUnit 11 by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7824
• feat: MbStrFunctionsFixer - add support for mb_trim, mb_ltrim and mb_rtrim functions by @​kubawerlos in PHP-CS-Fixer/PHP-CS-Fixer#7840

... (truncated)

Changelog

Sourced from friendsofphp/php-cs-fixer's changelog.

Changelog for v3.52.1

• fix: StatementIndentationFixer - do not crash on ternary operator in class property (#7899)
• fix: PhpCsFixer\Tokenizer\Tokens::setSize return type (#7900)

Changelog for v3.52.0

• chore: fix PHP 8.4 deprecations (#7894)
• chore: fix PHPStan 1.10.60 issues (#7873)
• chore: list over array in more places (#7876)
• chore: replace template with variable in Preg class (#7882)
• chore: update PHPStan (#7871)
• depr: nullable_type_declaration_for_default_null_value - deprecate option that is against @PHP84Migration (#7872)
• docs: Fix typo (#7889)
• feat: Add support for callable template in PHPDoc parser (#7084)
• feat: Add array_indentation to PER-CS2.0 ruleset (#7881)
• feat: @Symfony:risky - add no_unreachable_default_argument_value (#7863)
• feat: PhpCsFixer ruleset - enable nullable_type_declaration_for_default_null_value (#7870)
• fix: Constant invocation detected in DNF types (#7869)
• fix: Correctly indent multiline constants and properties (#7875)
• fix: no_useless_concat_operator - do not break variable (#7827)
• fix: TokensAnalyzer - handle unary operator in arrow functions (#7862)
• fix: TypeExpression - fix "JIT stack limit exhausted" error (#7843)

Changelog for v3.51.0

• chore: add missing tests for non-documentation classes (#7848)
• chore: do not perform type analysis in tests (#7852)
• chore: list over array in more places (#7857)
• chore: tests documentation classes (#7855)
• feat: @Symfony - add nullable_type_declaration (#7856)
• test: fix wrong type in param annotation (#7858)

Changelog for v3.50.0

• chore: add missing types (#7842)
• chore: BlocksAnalyzer - raise exception on invalid index (#7819)
• chore: DataProviderAnalysis - expect list over array (#7800)
• chore: do not use @large on method level (#7832)
• chore: do not use @medium on method level (#7833)
• chore: Fix typos (#7835)
• chore: rename variables (#7847)
• chore: some improvements around array typehints (#7799)
• CI: fix PHP 8.4 job (#7829)
• DX: Include symfony/var-dumper in dev tools (#7795)
• feat: Ability to remove unused imports from multi-use statements (#7815)

... (truncated)

Commits

• 6e77207 prepared the 3.52.1 release
• 5b7534c fix: StatementIndentationFixer - do not crash on ternary operator in class pr...
• c066ecc fix: PhpCsFixer\Tokenizer\Tokens::setSize return type (#7900)
• 1eb4e52 bumped version
• a3564bd prepared the 3.52.0 release
• 5380db3 fix: TypeExpression - fix "JIT stack limit exhausted" error (#7843)
• 951d3c2 chore: fix PHP 8.4 deprecations (#7894)
• 3b3bfe9 docs: Fix typo (#7889)
• 5cfa1f9 feat: Add array_indentation to PER-CS2.0 ruleset (#7881)
• 32866fc chore: replace template with variable in Preg class (#7882)
• Additional commits viewable in compare view

Updates phpstan/phpstan from 1.10.57 to 1.10.65

Release notes

Sourced from phpstan/phpstan's releases.

1.10.65

Improvements 🔧

• Fix slow enum cases union with lots of cases (#2985), #10772, thanks @​staabm!

Bugfixes 🐛

• Update BetterReflection (#2988)
  • Fix ReflectionSourceStubber compatibility before PHP 8.1 (ondrejmirtes/BetterReflection@94ca133), larastan/larastan#1882
  • Fix trait method visibility (ondrejmirtes/BetterReflection@d6153d5?w=1)

Function signature fixes 🤖

• Add benevolent union return types (#2986), thanks @​zonuexe!

Internals 🔍

• Add more tests for issue #10622 (#2961), thanks @​mvorisek!
• Remove unnecessary method calls in ClassReflection (#2984), thanks @​staabm!
• Use TrinaryLogic::describe() in test (phpstan/phpstan-src@222a66c)

1.10.64

Bleeding edge 🔪

• Fail build when project config uses custom extensions outside of analysed paths
  • This will only occur after a run that uses already present and valid result cache

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• Introduce ForbiddenClassNameExtension for append additional forbidden class prefixes (#2979), thanks @​kamil-zacek!
• Add AlwaysUsedMethodExtension (#2927), thanks @​axlon!
• Warn about possibly stale result cache with custom extensions (phpstan/phpstan-src@9338fdf)
  • This is how it looks: https://twitter.com/OndrejMirtes/status/1770024563113390437

Bugfixes 🐛

... (truncated)

Commits

• 3c657d0 PHPStan 1.10.65
• 5f1729e Updated PHPStan to commit 5f1729e44a050fa3c810ff35d79fb0cea59cf0c6
• 4b18f2b Unique names for tests
• 8d30248 Test Larastan on PHP 8.0 too
• 15dce0c Updated PHPStan to commit 15dce0cb3b3185b781f795b4e53e07beab6ecb69
• 4c167d7 Updated PHPStan to commit 4c167d7ff11dee9122a298ab0eb941ac61bb2ff1
• 944673f Updated PHPStan to commit 944673f9c6607a09942b6a1b8ea9f777f8b5375a
• bfa530a Updated PHPStan to commit bfa530a085b52bdcb1562d439724ca8cb5f1dbd5
• fb9f270 PHPStan 1.10.64
• 0d2f4b6 Updated PHPStan to commit 0d2f4b63c8e16217b341f98d3babfba21b82e3e0
• Additional commits viewable in compare view

Updates phpstan/phpstan-symfony from 1.3.7 to 1.3.9

Release notes

Sourced from phpstan/phpstan-symfony's releases.

1.3.9

• a32bc86 - Add @param-out for PropertyAccessor

1.3.8

• d8a0bc0 - Narrow type for Extension::getConfiguration if class exists

Commits

• a32bc86 Add @param-out for PropertyAccessor
• d8a0bc0 Narrow type for Extension::getConfiguration if class exists
• See full diff in compare view

Updates phpunit/phpunit from 10.5.10 to 10.5.15

Release notes

Sourced from phpunit/phpunit's releases.

PHPUnit 10.5.15

Fixed

• #5765: Be more forgiving with error handlers that do not respect error suppression

---

How to install or update PHPUnit

PHPUnit 10.5.14

Changed

• #5747: Cache result of Groups::groups()
• #5748: Improve performance of NamePrettifier::prettifyTestMethodName()
• #5750: Micro-optimize NamePrettifier::prettifyTestMethodName() once again

Fixed

• #5760: TestDox printer does not display details about exceptions raised in before-test methods

---

How to install or update PHPUnit

PHPUnit 10.5.13

Changed

• #5727: Prevent duplicate call of NamePrettifier::prettifyTestMethodName()
• #5739: Micro-optimize NamePrettifier::prettifyTestMethodName()
• #5740: Micro-optimize TestRunner::runTestWithTimeout()
• #5741: Save call to Telemetry\System::snapshot()
• #5742: Prevent file IO when not strictly necessary
• #5743: Prevent unnecessary ExecutionOrderDependency::getTarget() call
• #5744: Simplify NamePrettifier::prettifyTestMethodName()

Fixed

• #5351: Incorrect code coverage metadata does not prevent code coverage data from being collected
• #5746: Using -d CLI option multiple times triggers warning

---

How to install or update PHPUnit

PHPUnit 10.5.12

Fixed

• #5652: HRTime::duration() throws InvalidArgumentException

---

How to install or update PHPUnit

Changelog

Sourced from phpunit/phpunit's changelog.

[10.5.15] - 2024-03-22

Fixed

• #5765: Be more forgiving with error handlers that do not respect error suppression

[10.5.14] - 2024-03-21

Changed

• #5747: Cache result of Groups::groups()
• #5748: Improve performance of NamePrettifier::prettifyTestMethodName()
• #5750: Micro-optimize NamePrettifier::prettifyTestMethodName() once again

Fixed

• #5760: TestDox printer does not display details about exceptions raised in before-test methods

[10.5.13] - 2024-03-12

Changed

• #5727: Prevent duplicate call of NamePrettifier::prettifyTestMethodName()
• #5739: Micro-optimize NamePrettifier::prettifyTestMethodName()
• #5740: Micro-optimize TestRunner::runTestWithTimeout()
• #5741: Save call to Telemetry\System::snapshot()
• #5742: Prevent file IO when not strictly necessary
• #5743: Prevent unnecessary ExecutionOrderDependency::getTarget() call
• #5744: Simplify NamePrettifier::prettifyTestMethodName()

Fixed

• #5351: Incorrect code coverage metadata does not prevent code coverage data from being collected
• #5746: Using -d CLI option multiple times triggers warning

[10.5.12] - 2024-03-09

Fixed

• #5652: HRTime::duration() throws InvalidArgumentException

[10.5.11] - 2024-02-25

Fixed

• #5704: No warning when CLI options are used multiple times
• #5707: --fail-on-empty-test-suite CLI option is not documented in --help output
• No warning when the #[CoversClass] and #[UsesClass] attributes are used with the name of an interface
• Resource usage information is printed when the --debug CLI option is used

Commits

• 86376e0 Prepare release
• 30d6f53 Update Psalm baseline
• e1846c8 Fix CS/WS issues
• 3b58e65 Added 5764 regression test
• 4cf8824 Prepare release
• 43cc09c Closes #5760
• 3977933 Add test for #5760
• e98f990 Add test
• ecce542 Update ChangeLog
• 9e89be8 Simplify foreach
• Additional commits viewable in compare view

Updates vimeo/psalm from 5.20.0 to 5.23.1

Release notes

Sourced from vimeo/psalm's releases.

5.23.1

What's Changed

Fixes

• Fixed analysis of existing static methods if the __callStatic() method exists by @​issidorov in vimeo/psalm#10812

Full Changelog: vimeo/psalm@5.23.0...5.23.1

5.23.0

What's Changed

Features

• Update PHP 8.2 stubs to include SensitiveParameterValue by @​gsteel in vimeo/psalm#10726
• Add list of statements to BeforeFileAnalysisEvent by @​ohader in vimeo/psalm#10728
• Forbid iterating over generators with non-nullable send() by @​weirdan in vimeo/psalm#10697
• Initial support for named parameters for callables by @​weirdan in vimeo/psalm#10772

Fixes

• Improve randomizer stubs by @​danog in vimeo/psalm#10709
• Fix detecting magic static methods by @​issidorov in vimeo/psalm#10704
• Fix non-empty-lowercase-string handling with literal non-lowercase strings by @​kkmuffme in vimeo/psalm#10722
• Fix RiskyTruthyFalsyComparison irrelevant errors when there is no explicit truthy/falsy type by @​kkmuffme in vimeo/psalm#10733
• Allow Override attribute to be used in pure contexts by @​weirdan in vimeo/psalm#10734
• Revert "Allow tainted numerics except for 'html' and 'has_quotes'" by @​ohader in vimeo/psalm#10729
• Fix loading stubs from phar file on Windows by @​weirdan in vimeo/psalm#10748
• Fix a false flag issue with InvalidConstantAssignmentValue by @​MelechMizrachi in vimeo/psalm#10738
• Set inside_isset false when analyzing ArrayDimFetch index by @​edsrzf in vimeo/psalm#10752
• Set inside_isset = false when analyzing arguments by @​edsrzf in vimeo/psalm#10753
• Fix PHP notice - crash on invalid taint-escape by @​kkmuffme in vimeo/psalm#10760
• Fix version comparison for @since by @​weirdan in vimeo/psalm#10764
• Since annotations outside phpstub should not infer php version by @​kkmuffme in vimeo/psalm#10769
• Backport WeakMap iterator fix from master by @​weirdan in vimeo/psalm#10778
• Namespace anonymous classes by @​weirdan in vimeo/psalm#10779
• Update CallMap for sqlsrv_connect and sqlsrv_errors to match reflection by @​theodorejb in vimeo/psalm#10781
• $resource parameter of mkdir() is nullable since PHP 7.3 by @​weirdan in vimeo/psalm#10802
• Use wider class-string when combining class strings with intersections by @​weirdan in vimeo/psalm#10800

Internal changes

• Use TaintKind/TaintKindGroup constants instead of string values by @​ohader in vimeo/psalm#10746
• Skip symlink test on Windows by @​weirdan in vimeo/psalm#10749
• Avoid duplicating code for RiskyTruthyFalsyComparison by @​theodorejb in vimeo/psalm#10765
• fix PHP 8 tests running with wrong --php-version=/phpVersion= if not explicitly specified by @​kkmuffme in vimeo/psalm#10776
• CS fix by @​weirdan in vimeo/psalm#10801

New Contributors

• @​MelechMizrachi made their first contribution in vimeo/psalm#10738

Full Changelog: vimeo/psalm@5.22.2...5.23.0

... (truncated)

Commits

• 8471a89 Merge pull request #10812 from issidorov/bug-10807
• fe42e88 Resolve fail test #10807
• 2a91bd6 Added test for #10807
• 005e318 Merge pull request #10800 from weirdan/10799-use-wider-classstring
• 739d87d Use wider class-string when combining class strings with intersections
• 87f7101 Merge pull request #10802 from weirdan/10796-nullable-resource-for-mkdir
• 5c780c7 $resource parameter of mkdir() is nullable since PHP 7.3
• 02b58a5 Merge pull request #10801 from weirdan/fix-trailing-commas-after-anon-functions
• 8e1aa46 CS fix
• dca888c Merge pull request #10781 from theodorejb/fix-sqlsrv-callmap
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependencies.

[github-actions]

🏰 Composer Production Dependency changes 🏰

Prod Packages	Operation	Base	Target	Link
composer/pcre	Upgraded	3.1.1	3.1.3	Compare
doctrine/deprecations	Upgraded	1.1.2	1.1.3	Compare
nikic/php-parser	Upgraded	v4.18.0	v4.19.1	Compare
phpdocumentor/type-resolver	Upgraded	1.8.0	1.8.2	Compare
phpstan/phpdoc-parser	Upgraded	1.25.0	1.27.0	Compare
symfony/console	Upgraded	v6.4.3	v6.4.4	Compare
symfony/polyfill-ctype	Upgraded	v1.28.0	v1.29.0	Compare
symfony/polyfill-intl-grapheme	Upgraded	v1.28.0	v1.29.0	Compare
symfony/polyfill-intl-normalizer	Upgraded	v1.28.0	v1.29.0	Compare
symfony/polyfill-mbstring	Upgraded	v1.28.0	v1.29.0	Compare
symfony/string	Upgraded	v6.4.3	v6.4.4	Compare

[github-actions]

🚧 Composer Development Dependency changes 🚧

Dev Packages	Operation	Base	Target	Link
amphp/amp	Upgraded	v2.6.2	v2.6.4	Compare
friendsofphp/php-cs-fixer	Upgraded	v3.49.0	v3.52.1	Compare
netresearch/jsonmapper	Upgraded	v4.2.0	v4.4.1	Compare
phar-io/manifest	Upgraded	2.0.3	2.0.4	Compare
phpstan/phpstan	Upgraded	1.10.57	1.10.65	Compare
phpstan/phpstan-symfony	Upgraded	1.3.7	1.3.9	Compare
phpunit/php-code-coverage	Upgraded	10.1.11	10.1.14	Compare
phpunit/phpunit	Upgraded	10.5.10	10.5.15	Compare
sebastian/cli-parser	Upgraded	2.0.0	2.0.1	Compare
sebastian/diff	Upgraded	5.1.0	5.1.1	Compare
sebastian/environment	Upgraded	6.0.1	6.1.0	Compare
sebastian/exporter	Upgraded	5.1.1	5.1.2	Compare
sebastian/global-state	Upgraded	6.0.1	6.0.2	Compare
spatie/array-to-xml	Upgraded	3.2.2	3.2.3	Compare
symfony/polyfill-php80	Upgraded	v1.28.0	v1.29.0	Compare
symfony/polyfill-php81	Upgraded	v1.28.0	v1.29.0	Compare
symfony/process	Upgraded	v6.4.3	v6.4.4	Compare
theseer/tokenizer	Upgraded	1.2.2	1.2.3	Compare
vimeo/psalm	Upgraded	5.20.0	5.23.1	Compare

[dependabot]

Superseded by #30.